Patents by Inventor Juraj Nyíri
Juraj Nyíri has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11463549Abstract: A method, system and computer program product for facilitating inter-proxy communication via an existing protocol. A proxy receives a message (e.g., request message) using a protocol, such as HTTP. If the proxy determines to add proxy relevant information to the message, then the proxy defines a new message header for the inter-proxy communication, which is added to the existing header section of the message. The proxy relevant information is then added in the newly added message header of the message. The message with the proxy relevant information is then transmitted to a subsequent proxy using the protocol of the underlying request-response transaction. In this manner, inter-proxy communications are enabled via an existing protocol (e.g., HTTP) that is used in the request-response transaction so that proxies can communicate with one another pertaining to matters (e.g., maintenance schedule) unrelated to the original intent of the transaction using the existing protocol (e.g., HTTP).Type: GrantFiled: June 22, 2021Date of Patent: October 4, 2022Assignee: International Business Machines CorporationInventors: Mauro Marzorati, Seda Özses, Juraj Nyiri, Michael J. Santelia
-
Patent number: 11178111Abstract: A proxy is modified, to form an enhanced proxy, wherein the proxy is configured to inspect a header portion of a Hypertext Transfer Protocol (http) message, the modifying enabling the enhanced proxy to identify, at the enhanced proxy, a set of http header types in the http message received from a system. An external licensing authority (LA) is modified, to form an enhanced LA, wherein the enhanced LA is configured to verify a header parameter corresponding to a header type in the set of header types and return a license information corresponding to the system. The http message is modified by modifying the header portion in the http message according to the header type and a threshold corresponding to the header type, the header type and the threshold being identified in the license information. The modified http message is transmitted.Type: GrantFiled: November 28, 2018Date of Patent: November 16, 2021Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
-
Patent number: 11165796Abstract: Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.Type: GrantFiled: March 12, 2020Date of Patent: November 2, 2021Assignee: International Business Machines CorporationInventors: Mauro Marzorati, Yaser K. Doleh, Rosa M. Bolger, Juraj Nyíri
-
Patent number: 11153399Abstract: A method, system and computer program product for facilitating inter-proxy communication via an existing protocol. A proxy receives a message (e.g., request message) using a protocol, such as HTTP. If the proxy determines to add proxy relevant information to the message, then the proxy defines a new message header for the inter-proxy communication, which is added to the existing header section of the message. The proxy relevant information is then added in the newly added message header of the message. The message with the proxy relevant information is then transmitted to a subsequent proxy using the protocol of the underlying request-response transaction. In this manner, inter-proxy communications are enabled via an existing protocol (e.g., HTTP) that is used in the request-response transaction so that proxies can communicate with one another pertaining to matters (e.g., maintenance schedule) unrelated to the original intent of the transaction using the existing protocol (e.g., HTTP).Type: GrantFiled: January 23, 2019Date of Patent: October 19, 2021Assignee: International Business Machines CorporationInventors: Mauro Marzorati, Seda Özses, Juraj Nyíri, Michael J. Santelia
-
Patent number: 11146558Abstract: A method, a computer system, and a computer program product for authorization using multiple entities is provided. Embodiments of the present invention may include generating a secret, a user hash and an application hash. Embodiments of the present invention may include transmitting the user hash, the application hash and the password to an identity verification authority. Embodiments of the present invention may include generating a password hash. Embodiments of the present invention may include transmitting the user hash and the application hash to a server. Embodiments of the present invention may include identifying the password hash that is associated with the user hash and the application hash, transmitting the password hash and an authorization notification to the identity verification authority, comparing the password hash with a previously stored password hash and determining that the comparison of the password hash with the previously stored password hash matches.Type: GrantFiled: March 11, 2020Date of Patent: October 12, 2021Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Mauro Marzorati, Seda Özses, Juraj Nyíri, Shikhar Kwatra
-
Publication number: 20210314414Abstract: A method, system and computer program product for facilitating inter-proxy communication via an existing protocol. A proxy receives a message (e.g., request message) using a protocol, such as HTTP. If the proxy determines to add proxy relevant information to the message, then the proxy defines a new message header for the inter-proxy communication, which is added to the existing header section of the message. The proxy relevant information is then added in the newly added message header of the message. The message with the proxy relevant information is then transmitted to a subsequent proxy using the protocol of the underlying request-response transaction. In this manner, inter-proxy communications are enabled via an existing protocol (e.g., HTTP) that is used in the request-response transaction so that proxies can communicate with one another pertaining to matters (e.g., maintenance schedule) unrelated to the original intent of the transaction using the existing protocol (e.g., HTTP).Type: ApplicationFiled: June 22, 2021Publication date: October 7, 2021Inventors: Mauro Marzorati, Seda Özses, Juraj Nyíri, Michael J. Santelia
-
Publication number: 20210288959Abstract: A method, a computer system, and a computer program product for authorization using multiple entities is provided. Embodiments of the present invention may include generating a secret, a user hash and an application hash. Embodiments of the present invention may include transmitting the user hash, the application hash and the password to an identity verification authority. Embodiments of the present invention may include generating a password hash. Embodiments of the present invention may include transmitting the user hash and the application hash to a server. Embodiments of the present invention may include identifying the password hash that is associated with the user hash and the application hash, transmitting the password hash and an authorization notification to the identity verification authority, comparing the password hash with a previously stored password hash and determining that the comparison of the password hash with the previously stored password hash matches.Type: ApplicationFiled: March 11, 2020Publication date: September 16, 2021Inventors: Mauro Marzorati, Seda Özses, Juraj Nyíri, Shikhar Kwatra
-
Patent number: 11120107Abstract: Managing content delivery and content usage for client devices can include receiving, using computer hardware, HyperText Markup Language (HTML) code from a content server, wherein the HTML code is sent in response to a request originating from a client device, sending to an HTML licensing server, using the computer hardware, a query specifying the content server and a list including an HTML construct detected in the HTML code, receiving from the HTML licensing server, using the computer hardware, HTML license information specifying a validity status for the HTML construct on the list and a period of time for which the validity status is active, and determining, using the computer hardware, that the HTML code is invalid based on a current time, the validity status of the HTML construct, and the period of time.Type: GrantFiled: December 6, 2018Date of Patent: September 14, 2021Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATIONInventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
-
Publication number: 20200236188Abstract: A method, system and computer program product for facilitating inter-proxy communication via an existing protocol. A proxy receives a message (e.g., request message) using a protocol, such as HTTP. If the proxy determines to add proxy relevant information to the message, then the proxy defines a new message header for the inter-proxy communication, which is added to the existing header section of the message. The proxy relevant information is then added in the newly added message header of the message. The message with the proxy relevant information is then transmitted to a subsequent proxy using the protocol of the underlying request-response transaction. In this manner, inter-proxy communications are enabled via an existing protocol (e.g., HTTP) that is used in the request-response transaction so that proxies can communicate with one another pertaining to matters (e.g., maintenance schedule) unrelated to the original intent of the transaction using the existing protocol (e.g., HTTP).Type: ApplicationFiled: January 23, 2019Publication date: July 23, 2020Inventors: Mauro Marzorati, Seda Özses, Juraj Nyíri, Michael J. Santelia
-
Publication number: 20200213335Abstract: Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.Type: ApplicationFiled: March 12, 2020Publication date: July 2, 2020Inventors: Mauro Marzorati, Yaser K. Doleh, Rosa M. Bolger, Juraj Nyíri
-
Patent number: 10693893Abstract: Various methods for detecting a man-in-the-middle (MITM) during HTTPS communications are disclosed including, in some aspects, establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.Type: GrantFiled: January 16, 2018Date of Patent: June 23, 2020Assignee: International Business Machines CorporationInventors: Mauro Marzorati, Yaser K. Doleh, Rosa M. Bolger, Juraj Nyiri
-
Publication number: 20200184035Abstract: Managing content delivery and content usage for client devices can include receiving, using computer hardware, HyperText Markup Language (HTML) code from a content server, wherein the HTML code is sent in response to a request originating from a client device, sending to an HTML licensing server, using the computer hardware, a query specifying the content server and a list including an HTML construct detected in the HTML code, receiving from the HTML licensing server, using the computer hardware, HTML license information specifying a validity status for the HTML construct on the list and a period of time for which the validity status is active, and determining, using the computer hardware, that the HTML code is invalid based on a current time, the validity status of the HTML construct, and the period of time.Type: ApplicationFiled: December 6, 2018Publication date: June 11, 2020Inventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
-
Patent number: 10674719Abstract: At least two unmanned air vehicle (UAV) drones are deployed to a target location, the target location being associated with a species. At least one robot is deployed to the target location, wherein the at least one robot mimics an appearance of the species. Sensor data is collected from the at least two UAV drones. The sensor data is analyzed to determine whether a threat condition exists. In response to a determination of the threat condition, the at least one robot is repositioned to counteract the threat condition.Type: GrantFiled: February 12, 2018Date of Patent: June 9, 2020Assignee: International Business Machines CorporationInventors: Aaron K. Baughman, Gary F. Diamanti, Mauro Marzorati, Juraj Nyiri
-
Publication number: 20200169536Abstract: A proxy is modified, to form an enhanced proxy, wherein the proxy is configured to inspect a header portion of a Hypertext Transfer Protocol (http) message, the modifying enabling the enhanced proxy to identify, at the enhanced proxy, a set of http header types in the http message received from a system. An external licensing authority (LA) is modified, to form an enhanced LA, wherein the enhanced LA is configured to verify a header parameter corresponding to a header type in the set of header types and return a license information corresponding to the system. The http message is modified by modifying the header portion in the http message according to the header type and a threshold corresponding to the header type, the header type and the threshold being identified in the license information. The modified http message is transmitted.Type: ApplicationFiled: November 28, 2018Publication date: May 28, 2020Applicant: International Business Machines CorporationInventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
-
Publication number: 20190306145Abstract: A proxy, which is configured to inspect only a payload of a HyperText Transfer Protocol (http) message, is modified to form an enhanced proxy. The modification enables the enhanced proxy to identify, at the enhanced proxy, a set of http header types in the http message received from a system. A license verification request is sent from the enhanced proxy to an external licensing authority (LA) to verify an allowability of each header type in the set of header types. A license information corresponding to the system is received from the LA at the enhanced proxy. The http message is modified at the enhanced proxy by suppressing from transmission an http header of a disallowed header type in the http message, the disallowed header type being identified in the license information. The enhanced proxy transmits the modified http message.Type: ApplicationFiled: March 29, 2018Publication date: October 3, 2019Applicant: International Business Machines CorporationInventors: Michael Joseph Santelia, Mauro Marzorati, Seda Özses, Juraj Nyíri
-
Publication number: 20190246626Abstract: Aspects of the present disclosure relate to counteracting environmental threat conditions. At least two unmanned air vehicle (UAV) drones are deployed to a target location, the target location being associated with a species. At least one robot is deployed to the target location, wherein the at least one robot mimics an appearance of the species. Sensor data is collected from the at least two UAV drones. The sensor data is analyzed to determine whether a threat condition exists. In response to a determination of the threat condition, the at least one robot is repositioned to counteract the threat condition.Type: ApplicationFiled: February 12, 2018Publication date: August 15, 2019Inventors: Aaron K. Baughman, Gary F. Diamanti, Mauro Marzorati, Juraj Nyiri
-
Publication number: 20190222588Abstract: Various methods for detecting a man-in-the-middle (MITM) during HTTPS communications are disclosed including, in some aspects, establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.Type: ApplicationFiled: January 16, 2018Publication date: July 18, 2019Inventors: Mauro Marzorati, Yaser K. Doleh, Rosa M. Bolger, Juraj Nyiri